Package: links Version: 0.99+1.00pre12-1 Followup-For: Bug #296341 links-0.99+1.00-pre12-1 does not seem to be vulnerable to CAN-2004-1616, AFAICT. Just spawning links gives: $ ps auxw | grep links$ trini 7990 0.0 0.1 2656 820 pts/12 S+ 09:52 0:00 links
Then going to the test page in question: $ ps auxw | grep links$ trini 7998 0.0 0.2 2844 1328 pts/12 S+ 09:54 0:00 links (launching links to the page gives just 2656 for mem usage). Letting it sit does not increase memory usage at all (which is unlike lynx which has the similar problem in CAN-2004-1617, which does eat memory quickly). I have not performed a source code audit to see if perhaps the problem is with the exploit, however. -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.10 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages links depends on: ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libgpmg1 1.19.6-19 General Purpose Mouse - shared lib -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
